pghs975uc
/
infer_clone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

[annot reachability] add debug logging and light refactor

Browse Source 
Summary:
- run the tests! they weren't hooked up to the main Makefile :/
- add some html debug messages
- formatting

Reviewed By: skcho

Differential Revision: D16895578

fbshipit-source-id: e96d737cc
master
Jules Villard 6 years ago committed by Facebook Github Bot
parent ad82124956
commit 00cbc9c1e4
6 changed files with 89 additions and 39 deletions
Show Stats Download Patch File Download Diff File

9
Makefile
Unescape View File

@ -21,6 +21,7 @@ endif
ifeq ($(BUILD_C_ANALYZERS),yes) ifeq ($(BUILD_C_ANALYZERS),yes)
BUILD_SYSTEMS_TESTS += \ BUILD_SYSTEMS_TESTS += \
annotation-reachability-sources-override \
assembly \ assembly \
backtrack_level \ backtrack_level \
ck_analytics ck_imports \ ck_analytics ck_imports \
@ -55,6 +56,7 @@ DIRECT_TESTS += \
c_performance \ c_performance \
c_purity \ c_purity \
c_uninit \ c_uninit \
cpp_annotation-reachability \
cpp_bufferoverrun \ cpp_bufferoverrun \
cpp_conflicts \ cpp_conflicts \
cpp_errors \ cpp_errors \
@ -125,22 +127,23 @@ endif # BUILD_C_ANALYZERS
ifeq ($(BUILD_JAVA_ANALYZERS),yes) ifeq ($(BUILD_JAVA_ANALYZERS),yes)
BUILD_SYSTEMS_TESTS += \ BUILD_SYSTEMS_TESTS += \
differential_interesting_paths_filter \ differential_interesting_paths_filter \
differential_of_costs_report \ differential_of_costs_report \
incremental_analysis_cost_change \ incremental_analysis_cost_change \
differential_skip_anonymous_class_renamings \ differential_skip_anonymous_class_renamings \
differential_skip_duplicated_types_on_filenames \ differential_skip_duplicated_types_on_filenames \
differential_skip_duplicated_types_on_filenames_with_renamings \ differential_skip_duplicated_types_on_filenames_with_renamings \
gradle \ gradle \
java_test_determinator \ java_test_determinator \
javac \ javac \
resource_leak_exception_lines \ resource_leak_exception_lines \
racerd_dedup racerd_dedup
#TODO T41549034: Jdk11 translates string append differently, causing #TODO T41549034: Jdk11 translates string append differently, causing
#test failures in NullPointerExceptions:stringVarEqualsFalseNPE #test failures in NullPointerExceptions:stringVarEqualsFalseNPE
DIRECT_TESTS += \ DIRECT_TESTS += \
java_annotreach \
java_bufferoverrun \ java_bufferoverrun \
java_checkers \ java_checkers \
java_classloads \ java_classloads \

51
infer/src/checkers/annotationReachability.ml
Unescape View File

@ -7,6 +7,7 @@
open! IStd open! IStd
module F = Format module F = Format
module L = Logging
module MF = MarkupFormatter module MF = MarkupFormatter
module U = Utils module U = Utils
@ -192,7 +193,8 @@ module AnnotationSpec = struct
type predicate = Tenv.t -> Typ.Procname.t -> bool type predicate = Tenv.t -> Typ.Procname.t -> bool
type t = type t =
{ source_predicate: predicate { description: string (** for debugging *)
; source_predicate: predicate
; sink_predicate: predicate ; sink_predicate: predicate
; sanitizer_predicate: predicate ; sanitizer_predicate: predicate
; sink_annotation: Annot.t ; sink_annotation: Annot.t
@ -208,7 +210,8 @@ module StandardAnnotationSpec = struct
let snk_annot = annotation_of_str str_snk_annot in let snk_annot = annotation_of_str str_snk_annot in
let has_annot ia = Annotations.ia_ends_with ia snk_annot.Annot.class_name in let has_annot ia = Annotations.ia_ends_with ia snk_annot.Annot.class_name in
let open AnnotationSpec in let open AnnotationSpec in
{ source_predicate= { description= "StandardAnnotationSpec"
; source_predicate=
(fun tenv pname -> List.exists src_annots ~f:(fun a -> method_overrides_annot a tenv pname)) (fun tenv pname -> List.exists src_annots ~f:(fun a -> method_overrides_annot a tenv pname))
; sink_predicate= (fun tenv pname -> check_attributes has_annot tenv pname) ; sink_predicate= (fun tenv pname -> check_attributes has_annot tenv pname)
; sanitizer_predicate= default_sanitizer ; sanitizer_predicate= default_sanitizer
@ -254,6 +257,12 @@ module CxxAnnotationSpecs = struct
^ "()" ^ "()"
let debug_pred ~spec_name ~desc pred pname =
L.d_printf "%s: Checking if `%a` is a %s... " spec_name Typ.Procname.pp pname desc ;
let r = pred pname in
L.d_printf "%b %s.@." r desc ; r
let spec_from_config spec_name spec_cfg source_overrides = let spec_from_config spec_name spec_cfg source_overrides =
let src = option_name ^ " -> " ^ spec_name in let src = option_name ^ " -> " ^ spec_name in
let make_pname_pred entry ~src : Typ.Procname.t -> bool = let make_pname_pred entry ~src : Typ.Procname.t -> bool =
@ -263,7 +272,7 @@ module CxxAnnotationSpecs = struct
let path_pred pname = List.exists ~f:(path_match (src_path_of pname)) paths in let path_pred pname = List.exists ~f:(path_match (src_path_of pname)) paths in
match (symbols, paths) with match (symbols, paths) with
| [], [] -> | [], [] ->
Logging.(die UserError) "Must specify either `paths` or `symbols` in %s" src L.die UserError "Must specify either `paths` or `symbols` in %s" src
| _, [] -> | _, [] ->
sym_pred sym_pred
| [], _ -> | [], _ ->
@ -290,6 +299,7 @@ module CxxAnnotationSpecs = struct
| _ -> | _ ->
true true
in in
let src_pred = debug_pred ~spec_name ~desc:"source" src_pred in
let sinks = U.yojson_lookup spec_cfg "sinks" ~src ~f:U.assoc_of_yojson ~default:[] in let sinks = U.yojson_lookup spec_cfg "sinks" ~src ~f:U.assoc_of_yojson ~default:[] in
let sinks_src = src ^ " -> sinks" in let sinks_src = src ^ " -> sinks" in
let snk_name = spec_name ^ "-sink" in let snk_name = spec_name ^ "-sink" in
@ -297,6 +307,7 @@ module CxxAnnotationSpecs = struct
U.yojson_lookup sinks "desc" ~src:sinks_src ~f:U.string_of_yojson ~default:snk_name U.yojson_lookup sinks "desc" ~src:sinks_src ~f:U.string_of_yojson ~default:snk_name
in in
let snk_pred = make_pname_pred sinks ~src:sinks_src in let snk_pred = make_pname_pred sinks ~src:sinks_src in
let snk_pred = debug_pred ~spec_name ~desc:"sink" snk_pred in
let overrides = let overrides =
U.yojson_lookup sinks "overrides" ~src:sinks_src ~f:U.assoc_of_yojson ~default:[] U.yojson_lookup sinks "overrides" ~src:sinks_src ~f:U.assoc_of_yojson ~default:[]
in in
@ -304,6 +315,7 @@ module CxxAnnotationSpecs = struct
if List.is_empty overrides then fun _ -> false if List.is_empty overrides then fun _ -> false
else make_pname_pred overrides ~src:(sinks_src ^ " -> overrides") else make_pname_pred overrides ~src:(sinks_src ^ " -> overrides")
in in
let sanitizer_pred = debug_pred ~spec_name ~desc:"sanitizer" sanitizer_pred in
let call_str = "\n -> " in let call_str = "\n -> " in
let report_cxx_annotation_stack src_summary loc trace stack_str snk_pname call_loc = let report_cxx_annotation_stack src_summary loc trace stack_str snk_pname call_loc =
let src_pname = Summary.get_proc_name src_summary in let src_pname = Summary.get_proc_name src_summary in
@ -339,8 +351,8 @@ module CxxAnnotationSpecs = struct
report_cxx_annotation_stack (CallSite.make proc_name loc) sink_map report_cxx_annotation_stack (CallSite.make proc_name loc) sink_map
with Caml.Not_found -> () with Caml.Not_found -> ()
in in
let open AnnotationSpec in { AnnotationSpec.description= Printf.sprintf "CxxAnnotationSpecs %s from config" spec_name
{ source_predicate= (fun _ pname -> src_pred pname) (* not used! *) ; source_predicate= (fun _ pname -> src_pred pname) (* not used! *)
; sink_predicate= (fun _ pname -> snk_pred pname) ; sink_predicate= (fun _ pname -> snk_pred pname)
; sanitizer_predicate= (fun _ pname -> sanitizer_pred pname) ; sanitizer_predicate= (fun _ pname -> sanitizer_pred pname)
; sink_annotation= snk_annot ; sink_annotation= snk_annot
@ -371,7 +383,8 @@ module NoAllocationAnnotationSpec = struct
let spec = let spec =
let open AnnotationSpec in let open AnnotationSpec in
{ source_predicate= (fun tenv pname -> method_overrides_annot no_allocation_annot tenv pname) { description= "NoAllocationAnnotationSpec"
; source_predicate= (fun tenv pname -> method_overrides_annot no_allocation_annot tenv pname)
; sink_predicate= (fun tenv pname -> is_allocator tenv pname) ; sink_predicate= (fun tenv pname -> is_allocator tenv pname)
; sanitizer_predicate= ; sanitizer_predicate=
(fun tenv pname -> check_attributes Annotations.ia_is_ignore_allocations tenv pname) (fun tenv pname -> check_attributes Annotations.ia_is_ignore_allocations tenv pname)
@ -410,7 +423,8 @@ module ExpensiveAnnotationSpec = struct
let spec = let spec =
let open AnnotationSpec in let open AnnotationSpec in
{ source_predicate= is_expensive { description= "ExpensiveAnnotationSpec"
; source_predicate= is_expensive
; sink_predicate= ; sink_predicate=
(fun tenv pname -> (fun tenv pname ->
let has_annot ia = Annotations.ia_ends_with ia expensive_annot.class_name in let has_annot ia = Annotations.ia_ends_with ia expensive_annot.class_name in
@ -469,8 +483,7 @@ let get_annot_specs pname =
| Typ.Procname.ObjC_Cpp _ | Typ.Procname.C _ | Typ.Procname.Block _ -> | Typ.Procname.ObjC_Cpp _ | Typ.Procname.C _ | Typ.Procname.Block _ ->
Language.Clang Language.Clang
| _ -> | _ ->
Logging.(die InternalError) L.die InternalError "Cannot find language for proc %s" (Typ.Procname.to_string pname)
"Cannot find language for proc %s" (Typ.Procname.to_string pname)
in in
List.Assoc.find_exn ~equal:Language.equal annot_specs language List.Assoc.find_exn ~equal:Language.equal annot_specs language
@ -481,14 +494,17 @@ module TransferFunctions (CFG : ProcCfg.S) = struct
type extras = AnnotationSpec.t list type extras = AnnotationSpec.t list
let check_call tenv callee_pname caller_pname call_site astate specs = let is_sink tenv (spec : AnnotationSpec.t) ~caller_pname ~callee_pname =
List.fold ~init:astate spec.sink_predicate tenv callee_pname && not (spec.sanitizer_predicate tenv caller_pname)
~f:(fun astate (spec : AnnotationSpec.t) ->
if
spec.sink_predicate tenv callee_pname && not (spec.sanitizer_predicate tenv caller_pname) let check_call tenv ~caller_pname ~callee_pname call_site astate specs =
then Domain.add_call_site spec.sink_annotation callee_pname call_site astate List.fold ~init:astate specs ~f:(fun astate (spec : AnnotationSpec.t) ->
if is_sink tenv spec ~caller_pname ~callee_pname then (
L.d_printfln "%s: Adding sink call `%a -> %a`" spec.description Typ.Procname.pp
caller_pname Typ.Procname.pp callee_pname ;
Domain.add_call_site spec.sink_annotation callee_pname call_site astate )
else astate ) else astate )
specs
let merge_callee_map call_site summary callee_pname tenv specs astate = let merge_callee_map call_site summary callee_pname tenv specs astate =
@ -496,6 +512,7 @@ module TransferFunctions (CFG : ProcCfg.S) = struct
| None -> | None ->
astate astate
| Some callee_call_map -> | Some callee_call_map ->
L.d_printf "Applying summary for `%a`@\n" Typ.Procname.pp callee_pname ;
let add_call_site annot sink calls astate = let add_call_site annot sink calls astate =
if Domain.CallSites.is_empty calls then astate if Domain.CallSites.is_empty calls then astate
else else
@ -515,7 +532,7 @@ module TransferFunctions (CFG : ProcCfg.S) = struct
| Sil.Call (_, Const (Cfun callee_pname), _, call_loc, _) -> | Sil.Call (_, Const (Cfun callee_pname), _, call_loc, _) ->
let caller_pname = Summary.get_proc_name summary in let caller_pname = Summary.get_proc_name summary in
let call_site = CallSite.make callee_pname call_loc in let call_site = CallSite.make callee_pname call_loc in
check_call tenv callee_pname caller_pname call_site astate extras check_call tenv ~callee_pname ~caller_pname call_site astate extras
|> merge_callee_map call_site summary callee_pname tenv extras |> merge_callee_map call_site summary callee_pname tenv extras
| _ -> | _ ->
astate astate

34
infer/tests/build_systems/annotation-reachability-sources-override/Makefile
Unescape View File

@ -0,0 +1,34 @@
# Copyright (c) Facebook, Inc. and its affiliates.
#
# This source code is licensed under the MIT license found in the
# LICENSE file in the root directory of this source tree.
TESTS_DIR = ../..
# see explanations in cpp/errors/Makefile for the custom isystem
CLANG_OPTIONS = -x c++ -std=c++11 -nostdinc++ -isystem$(ROOT_DIR) -isystem$(CLANG_INCLUDES)/c++/v1/ -c
INFER_OPTIONS = --annotation-reachability-only --debug-exceptions --project-root $(TESTS_DIR) \
--annotation-reachability-cxx '{ \
"TEST_ANNOT_REACH": { \
"sources": { "symbols": [ "CheckFrom::" ] }, \
"sinks": { \
"overrides": { \
"paths": [ \
"codetoanalyze/cpp/annotation-reachability/reachability-approved.cpp" \
] \
}, \
"symbols": [ "Danger::", "death" ] \
} \
} \
}' \
--annotation-reachability-cxx-sources '{ \
"symbols": [ "CheckFrom::danger_via", "CheckFrom::death_via" ] \
}'
INFERPRINT_OPTIONS = --issues-tests
SOURCES = $(wildcard $(TESTS_DIR)/codetoanalyze/cpp/annotation-reachability/*.cpp)
include $(TESTS_DIR)/clang.make
infer-out/report.json: $(MAKEFILE_LIST)

0
infer/tests/codetoanalyze/cpp/annotation-reachability/sources-override/issues.exp → infer/tests/build_systems/annotation-reachability-sources-override/issues.exp
Unescape View File

16
infer/tests/codetoanalyze/cpp/annotation-reachability/Makefile
Unescape View File

@ -7,7 +7,21 @@ TESTS_DIR = ../../..
# see explanations in cpp/errors/Makefile for the custom isystem # see explanations in cpp/errors/Makefile for the custom isystem
CLANG_OPTIONS = -x c++ -std=c++11 -nostdinc++ -isystem$(ROOT_DIR) -isystem$(CLANG_INCLUDES)/c++/v1/ -c CLANG_OPTIONS = -x c++ -std=c++11 -nostdinc++ -isystem$(ROOT_DIR) -isystem$(CLANG_INCLUDES)/c++/v1/ -c
INFER_OPTIONS = --annotation-reachability-only --debug-exceptions --project-root $(TESTS_DIR) --annotation-reachability-cxx '{ "TEST_ANNOT_REACH": { "sources": { "symbols": [ "CheckFrom::" ] }, "sinks": { "overrides": { "symbols": [ "Good::"], "paths": [ "codetoanalyze/cpp/annotation-reachability/reachability-approved.cpp" ] },"symbols": [ "Danger::", "death" ] } } }' INFER_OPTIONS = --annotation-reachability-only --debug-exceptions --project-root $(TESTS_DIR) \
--annotation-reachability-cxx '{ \
"TEST_ANNOT_REACH": { \
"sources": { "symbols": [ "CheckFrom::" ] }, \
"sinks": { \
"overrides": { \
"paths": [ \
"codetoanalyze/cpp/annotation-reachability/reachability-approved.cpp" \
] \
}, \
"symbols": [ "Danger::", "death" ] \
} \
} \
}'
INFERPRINT_OPTIONS = --issues-tests INFERPRINT_OPTIONS = --issues-tests

18
infer/tests/codetoanalyze/cpp/annotation-reachability/sources-override/Makefile
Unescape View File

@ -1,18 +0,0 @@
# Copyright (c) Facebook, Inc. and its affiliates.
#
# This source code is licensed under the MIT license found in the
# LICENSE file in the root directory of this source tree.
TESTS_DIR = ../../../..
# see explanations in cpp/errors/Makefile for the custom isystem
CLANG_OPTIONS = -x c++ -std=c++11 -nostdinc++ -isystem$(ROOT_DIR) -isystem$(CLANG_INCLUDES)/c++/v1/ -c
INFER_OPTIONS = --annotation-reachability-only --debug-exceptions --project-root $(TESTS_DIR) --annotation-reachability-cxx '{ "TEST_ANNOT_REACH": { "sources": { "symbols": [ "CheckFrom::" ] }, "sinks": { "overrides": { "symbols": [ "Good::"], "paths": [ "codetoanalyze/cpp/annotation-reachability/reachability-approved.cpp" ] },"symbols": [ "Danger::", "death" ] } } }' --annotation-reachability-cxx-sources '{ "symbols": [ "CheckFrom::danger_via", "CheckFrom::death_via" ] }'
INFERPRINT_OPTIONS = --issues-tests
SOURCES = $(wildcard ../*.cpp)
include $(TESTS_DIR)/clang.make
infer-out/report.json: $(MAKEFILE_LIST)
Write Preview
Loading…
Cancel
Save